EC-Council - Certified Security Analyst (Practical) | ECSA Practical



Only 5 Days



Classroom / Online / Hybrid

Next date

Next date:

26/6/2023 (Monday)


This accelerated EC-Council Certified Security Analyst (ECSA) Practical course will give you all knowledge and skills you need to be a certified expert pen tester.

You’ll learn from experienced instructors using interactive hands-on iLabs and the state-of-the-art “Open Environment” – giving you simulated experience of conducting penetration tests in the real world. Prove your knowledge with ECSA, prove your real world hands-on skills with ECSA Practical.

You’ll be completely prepared for the ECSA and ECSA Practical exam with unique our Lecture | Lab | Review technique. After this course you will be able to:

  • Perform a comprehensive security audit of an organisation
  • Carry out advanced network scans beyond perimeter defences, including exploit selection, customisation, launch and post exploitation manoeuvres
  • Complete automated and manual vulnerability analysis
  • Create a professional pen-testing report

By gaining and demonstrating you have these practical skills you’ll prove you’re an expert pen tester.

You’ll also understand all the methodology you need to pass the ECSA exam, which you’ll do during your course, just steps away from the classroom. Get immersed in the most up-to-date attack vectors like SQL injection, XSS, CSRF and DoS, and learn the methodology of:

  • SQL Penetration Testing
  • Database Penetration Testing
  • Cloud Penetration Testing

This accelerated, all-inclusive ECSA Practical course includes GCHQ accredited courseware, the ECSA exam and an ECSA Practical exam voucher and 6 months of iLabs after the course. You’ll get 24 hour support during the course as you’ll live onsite with your instructor.

When you get ECSA (Practical) certified, you can apply for CREST Registered Tester (CRT) qualification equivalency - meaning you get two certifications from just one course and exam.

9x Accredited Training Centre of the Year

Accredited Training Centre of the Year

Firebrand Training has again won the EC-Council Accredited Training Centre of the Year Award, from a Training Partner network that has more than 700 training centres across 107 countries. This extends a record-breaking run of successive awards to nine years.

Jay Bavisi, President of EC-Council said: “The annual EC-Council Awards highlights the commitment and achievements of our global partners and trainers that have contributed to the information security community.”


This accelerated ECSA course fully prepares you for both the penetration test skills competency test, the ECSA v10 exam and the ECSA Practical. The course also includes some of the self-study modules in order to give you training on as many topics as possible and give you more valuable penetration testing skills. With the ECSA Practical, you'll be able to prove you have the real-world skills needed to be a pen-tester, including report writing.

Seven reasons why you should sit your course with Firebrand Training

  1. Two options of training. Choose between residential classroom-based, or online courses
  2. You'll be certified fast. With us, you’ll be trained in record time
  3. Our course is all-inclusive. A one-off fee covers all course materials, exams**, accommodation* and meals*. No hidden extras.
  4. Pass first time or train again for free. This is our guarantee. We’re confident you’ll pass your course first time. But if not, come back within a year and only pay for accommodation, exams and incidental costs
  5. You’ll learn more. A day with a traditional training provider generally runs from 9am – 5pm, with a nice long break for lunch. With Firebrand Training you’ll get at least 12 hours/day quality learning time, with your instructor
  6. You’ll learn faster. Chances are, you’ll have a different learning style to those around you. We combine visual, auditory and tactile styles to deliver the material in a way that ensures you will learn faster and more easily
  7. You’ll be studying with the best. We’ve been named in Training Industry’s “Top 20 IT Training Companies of the Year” every year since 2010. As well as winning many more awards, we’ve trained and certified over 100,000 professionals
  • * For residential training only. Doesn't apply for online courses
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts


All of the following core modules are included on this ECSA course, as well as coverage of the concepts from the official ECSA self-study modules, to ensure you are fully prepared for the ECSA and ECSA Practical exams:

Core Modules

  • 1. Introduction to Penetration Testing and Methodologies
  • 2. Penetration Testing Scoping and Engagement Methodology
  • 3. Open Source Intelligence (OSINT) Methodology
  • 4. Social Engineering Penetration Testing Methodology
  • 5. Network Penetration Testing Methodology - External
  • 6. Network Penetration Testing Methodology - Internal
  • 7. Network Penetration Testing Methodology - Perimeter Devices
  • 8. Web Application Penetration Testing Methodology
  • 9. Database Penetration Testing Methodology
  • 10. Wireless Penetration Testing Methodology
  • 11. Cloud Penetration Testing Methodology
  • 12. Report Writing and Post Testing Actions

Self-Study Modules

  • 1. Penetration Testing Essential Concepts
  • 2. Password Cracking Penetration Testing
  • 3. Denial-of-Service Penetration Testing
  • 4. Stolen Laptop, PDAs and Cell Phones Penetration Testing
  • 5. Source Code Penetration Testing
  • 6. Physical Security Penetration Testing
  • 7. Surveillance Camera Penetration Testing
  • 8. VoIP Penetration Testing
  • 9. VPN Penetration Testing
  • 10.Virtual Machine Penetration Testing
  • 11. War Dialing
  • 12. Virus and Trojan Detection
  • 13. Log Management Penetration Testing
  • 14. File Integrity Checking
  • 15. Telecommunication and Broadband Communication Penetration Testing
  • 16. Email Security Penetration Testing
  • 17. Security Patches Penetration Testing
  • 18. Data Leakage Penetration Testing
  • 19. SAP Penetration Testing
  • 20. Standards and Compliance
  • 21. Information System Security Principles
  • 22. Information System Incident Handling and Response
  • 23. Information System Auditing and Certification

Exam Track

You'll sit the ECSA v10 exam at the Firebrand Training centre during the course, covered by your Certification Guarantee.

This exam is proctored online through the EC-Council Exam portal.

  • 150 questions
  • 70% passing score
  • 4 hour exam
  • Multiple choice

You'll also get a voucher for the EC-Council Certified Security Analyst (Practical) Exam. You can sit this exam within 6 months of the course. It is proctored online.

  • Number of challenges: 8
  • Duration: 12 hours
  • Test Format: iLabs cyber range
  • Passing Score: 5 out of 8 challenges and submission of an acceptable penetration testing report

EC-Council and CREST certification equivalency

When you become ECSA (v10) certified, you can apply for CREST Practitioner Security Analyst (CPSA) qualification equivalency.

When you achieve your ECSA (Practical) certification, you can apply for CREST Registered Tester (CRT) qualification equivalency.

What's Included

On this accelerated, all inclusive course you'll get:

  • EC-Council GCHQ accredited Official ECSA course materials
  • Certified EC-Council Instructor
  • 6 months access to EC-Council official ECSA iLabs
  • EC-Council ECSA Exam which you'll sit on the final day of the course
  • EC-Council ECSA Practical exam voucher

When you achieve your ECSA Practical certification, you will be awarded a digital badge. This can be downloaded from EC-Council’s Aspen Portal.

Your accelerated course includes:

  • Accommodation *
  • Meals, unlimited snacks, beverages, tea and coffee *
  • On-site exams **
  • Exam vouchers **
  • Practice tests **
  • Certification Guarantee ***
  • Courseware
  • Up-to 12 hours of instructor-led training each day
  • 24-hour lab access
  • Digital courseware **
  • * For residential training only. Accommodation is included from the night before the course starts. This doesn't apply for online courses.
  • ** Some exceptions apply. Please refer to the Exam Track or speak with our experts
  • *** Pass first time or train again free as many times as it takes, unlimited for 1 year. Just pay for accommodation, exams, and incidental costs.


Before attending this accelerated penetration testing course, and in order to best prepare you for the ECSA and ECSA Practical exams, we strongly recommend you should either: already hold the CEH v10 certification, or have the equivalent knowledge and experience to a CEH v10 holder, which includes experience in:

  • TCP/IP (essential)
  • Networking (intermediate)
  • Scripting and Programming (essential but the basics)
  • Cryptography (intermediate)
  • Web Development (essential but the basics)
  • Virtualisation (basics)
  • Project Management (basics)
  • Knowledge of Wireless Testing
  • Knowledge of Cloud Technologies
  • Knowledge of Databases

Unsure whether you meet the prerequisites? Don’t worry. Your training consultant will discuss your background with you to understand if this course is right for you.


Here's the Firebrand Training review section. Since 2001 we've trained exactly 134,561 students and asked them all to review our Accelerated Learning. Currently, 96.51% have said Firebrand exceeded their expectations.

Read reviews from recent accelerated courses below or visit Firebrand Stories for written and video interviews from our alumni.

"The instructor was very knowledgeable, professional and simply brilliant with the explanations and demonstrations of the various testing tools including trouble shooting any student installation issues. We used the remote OIL service and it was like being in the classroom with regards using the labs and viewing the course presentation slides."
Mark Grover, Infosec Consulting ltd. (23/3/2020 (Monday) to 27/3/2020 (Friday))

"It was an excellent crash course on a wide variety of different topics related to ethical hacking."
TR. (28/11/2022 (Monday) to 2/12/2022 (Friday))

"The training centre was well presented and clean, all the provided equipment worked correctly. The trainer was well versed in his material and the subject in general."
Anonymous. (28/11/2022 (Monday) to 2/12/2022 (Friday))

"Instructor was on top of his job. He really knows his stuff. Acquired a lot of practical and theory knowledge."
Enoch Adjiri, Central securities Depository Gh. Ltd. (28/11/2022 (Monday) to 2/12/2022 (Friday))

"Great instructor, Good course, Good hotel and food. "
Anonymous. (28/11/2022 (Monday) to 2/12/2022 (Friday))

Course Dates

EC-Council - Certified Security Analyst (Practical) | ECSA Practical




Book now

20/2/2023 (Monday)

24/2/2023 (Friday)

Finished - Leave feedback


26/6/2023 (Monday)

30/6/2023 (Friday)


Book now

4/9/2023 (Monday)

8/9/2023 (Friday)


Book now

6/11/2023 (Monday)

10/11/2023 (Friday)


Book now

20/11/2023 (Monday)

24/11/2023 (Friday)


Book now

Latest Reviews from our students